Click HERE to see how Saviynt Intelligence is transforming the industry. |
05/15/2024 03:28 AM
Hello,
When trying to delete an account, getting the following error:
These seemed to be the relevant logs when I extracted them:
"2024-05-15T10:04:41.171+00:00","arsms","c.s.s.a.s.impl.RequestAccessServiceImpl","http-nio-8787-exec-1-qjv5p","DEBUG","inside the endpoints block and endpoints is com.saviynt.ssm.entity.Endpoints@3c1 "
"2024-05-15T10:04:41.171+00:00","arsms","c.s.s.a.s.impl.RequestAccessServiceImpl","http-nio-8787-exec-1-qjv5p","DEBUG","Inside the validateUserPermissionToEndpointWS "
"2024-05-15T10:04:41.171+00:00","arsms","c.s.s.a.s.impl.RequestAccessServiceImpl","http-nio-8787-exec-1-qjv5p","DEBUG","Endpoint to validate 487 "
"2024-05-15T10:04:41.177+00:00","arsms","c.s.s.a.s.impl.RequestAccessServiceImpl","http-nio-8787-exec-1-qjv5p","DEBUG","accessValidationMap :: {msg=Passed endpoint does not match endpoints defined in Sav role, allowedEndpoints=[], hasAccess=true, errorCode=0, checkAccess=false} "
"2024-05-15T10:04:41.177+00:00","arsms","c.s.s.a.s.impl.RequestAccessServiceImpl","http-nio-8787-exec-1-qjv5p","DEBUG","End of validateUserPermissionToEndpointWS "
This line in particular: Passed endpoint does not match endpoints defined in Sav role, allowedEndpoints=[], hasAccess=true, errorCode=0, checkAccess=false seemed important. However, I am not sure why this endpoint particularly is giving the error at request level itself?
Has anyone faced a similar issue or knows how to resolve this?
Thanks in advance
05/15/2024 04:16 AM
Add endpoint name under sav role - access to endpoint section
05/15/2024 04:23 AM
Showing error even after adding:
Added All as well, still didn't work.
05/15/2024 04:26 AM
Did you ran microservice job / restart done ?
05/15/2024 05:24 AM
Yes, restart is done and deltasync job runs every 15 minutes.
I've even added All along with the endpoint name in both the sav roles that the particular user possesses
Still giving that error
05/15/2024 05:38 AM
Chek how many sav role user have
05/15/2024 05:49 AM
2 sav roles - i have added "All" and "Endpoint name" in both of those sav roles access to endpoint section
05/15/2024 05:50 AM
Just keep All
05/15/2024 06:07 AM
Made the change and after doing so, did another app restart. Still same error
05/15/2024 06:12 AM
Is this error specific to endpoint or all application? If specific share endpoint configuration
05/15/2024 06:44 AM
Its only happening with one endpoint. The ad endpoint, which pulls in the accounts once created - when we try to delete it from there, it works:
Screenshots from the endpoint configuration
05/15/2024 07:46 PM
Please validate behaviour in NEO Request form